Appl. No. 10/068,776 
Amendment Dated October 3, 2005 

Amendments to the Specification: 
Please add the following paragraphs after paragraph [95]: 

[96] By way of illustration and not as a limitation, in an embodiment of the present 
invention, a system for providing secure network communication comprises a network, a 
plurality of host devices connected to said network, an intelligent network interface 
between each host device and the network, at least one central management console for 
dynamically distributing security agent servlets to said intelligent network interfaces, 
and components on each intelligent network interface for running said security agent 
servlets. 

[97] In yet another embodiment of the present invention, each intelligent network 

interface further comprises a CPU, memory, an I/O interface for the network, and a 

second I/O interface for the host device. 
[98] In still another embodiment of the present invention, each intelligent network 

interface is implemented in a form selected from the group consisting of PCI cards, 

PCMCIA cards, rapid I/O - high bandwidth cards, and standalone devices. 
[99] In another embodiment of the present invention, each intelligent network interface 

further comprises a serial line authentication port. In yet another embodiment of the 

present invention, the serial line authentication port is a USB port. 
[100] In still another embodiment of the present invention, the intelligent network 

interface further comprises a parallel port authentication port. 
[101] In yet another embodiment of the present invention, the memory comprises flash 

memory for storing an OS and dynamic memory for applications. 
[102] In even another embodiment of the present invention, the memory comprises a 

hard drive for storing an OS and applications and random access memory for running 

said OS and applications. 
[103] In another embodiment of the present invention, the intelligent network interfaces 

have an OS that is distinct from the host devices. 
[104] In still another embodiment of the present invention, the dynamically distributed 

security agent servlets provide functions selected from the group consisting of: 

encryption, authentication, protocol translations, single sign-on, multi-level firewalling, 
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distinguished-name based firewalling, centralized user management, machine 
diagnostics, proxying, fault tolerance, centralized patching, web filtering, virus scanning, 
auditing, and gateway intrusion detection. In even another embodiment of the present 
invention, the system further comprises an encryption accelerator on a field 
programmable gate array (FPGA) on the intelligent network interface. 
[105] An embodiment of the present invention provides a method of providing non-host 
integrated fault tolerance for hosts on a network. An intelligent network interface is 
provided between a network and each host on the network. A central management 
console (CMC) is provided on the network. The CMC dynamically distributes fault 
tolerance servlets to the hosts such that, upon a failure of a first host, a first intelligent 
network interface between the network and the first host redirects packets to a second 
host on the network without any intervention from the first or second host. 
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